The signal is strong. Let’s not assume the rest is 📡 Meet the HTB Certified Wi-Fi Pentesting Expert! A hands-on certification designed to teach you how modern Wi-Fi networks really work, how they’re assessed, and where they tend to fall apart. From understanding wireless behavior to testing today’s protections in realistic scenarios, HTB CWPE is built for people who want real Wi-Fi pentesting skills, not surface-level knowledge. Learn more: okt.to/5xDXZm #HackTheBox #HTB #CWPE #WiFiPentester #Cybersecurity #WiFi

🚨 Weekly Content Drop 🚨 This week’s drop brings fresh content across OSINT, threat hunting, Windows, and web. 🦊 KitsuneHook — New Sherlock Difficulty: Easy Creator: 0iQ Tech: Google Knowledge domains: Threat Intelligence, Threat Hunting, OSINT Investigate a multi-stage campaign targeting a Japan-based manufacturing subsidiary. What begins with SQL injection on an ERP system escalates into web shell deployment, advanced malware, MSP compromise, and suspected links to Winnti activity against Japanese manufacturing, materials, and energy sectors. Your mission: investigate the “RevivalStone” campaign, identify the threat actors, and dissect their toolchain. Also dropping this week: 🖥️ Checkpoint — New Machine Windows | 30 points | Releases 13 Jun 2026 🍽️ Bobby’s Bistro — New Challenge Easy | Web New week. New intelligence. New trails to follow. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #ThreatIntelligence #ThreatHunting #OSINT #DFIR #Windows #WebSecurity #CyberSecurity

The king has fallen. The throne is empty. Who will claim the realm? Cyber Apocalypse 2026 is coming. Join Hack The Box’s largest community event of the year and take on five days of relentless cybersecurity challenges built to test real-world skills. Compete against thousands of hackers worldwide, connect with the community, showcase your skills to global organizations and recruiters, and fight for your share of a massive prize pool. Get more than 200 points and claim your certificate of attendance. For the glory. For the training. For the prizes. For the certification. Register now: okt.to/idbWSQ #HackTheBox #CyberApocalypse2026 #CTF #CyberSecurity #CyberSkills #InfoSec #CaptureTheFlag

What happens when attackers do not break in, but simply log in? Cash Credentials challenges teams to investigate a breach that starts with valid VPN access sold by an insider, then escalates into credential theft, sensitive data exfiltration, and BlackSuit ransomware deployment. Teams will need to prove they can: Triage alerts under pressure Investigate forensic evidence Identify the full business impact before recovery decisions begin Give your defenders repeatable, realistic reps against the behaviors that often hide in plain sight. You can schedule your next session in minutes and stress-test your team's true capabilities. Get started: okt.to/Yeura8

Hack The Box and Semperis have formed a strategic technology alliance to help enterprises strengthen identity resilience in the AI era. As hybrid environments, AI-driven transformation, and operational complexity reshape enterprise security, identity has become one of the most critical layers for defenders to protect. Together, Hack The Box and Semperis will combine hands-on cyber readiness with deep hybrid identity-security expertise to help security teams prepare for and respond to identity-based threats across Active Directory, Entra ID, Okta, and Ping Security environments. The alliance will focus on joint training, cyber exercises, educational content, industry activations, and readiness programs that turn identity-risk insight into practical skills, stronger workflows, and more confident response. Read the full announcement: okt.to/yWCHG2 #HackTheBox #Semperis #IdentitySecurity #CyberResilience #CyberSecurity #ActiveDirectory #EntraID #Okta #CyberReadiness

What happens when a cyber decision cannot wait? Welcome to Pressure Zone, a new game-driven cybersecurity podcast from Hack The Box. Each episode places security leaders inside escalating, realistic risk scenarios where they must make decisions under pressure, explain the business impact, and defend their judgment as the situation evolves. First up: The Poison Pill. A $50 million acquisition is nearly complete. Then a final code review uncovers a hidden logic bomb buried inside the target company’s core database architecture. Host Christine Bartlett puts Hack The Box Founder and CEO Haris Pylarinos through a live decision game where growth, trust, disclosure, legal exposure, and hacker instinct collide. This is cybersecurity leadership under pressure. Listen to episode one now >>> okt.to/YIqpTa #HackTheBox #PressureZone #CyberSecurity #CyberLeadership #CISO #ExecutiveRisk #CyberResilience #RiskManagement

A Samba print job name should not be able to become a shell command. But with CVE-2026-4480, an unauthenticated attacker who can reach a guest printer share can achieve pre-auth command execution through Samba’s printing path. In our latest War Room blog, we break down what makes this vulnerability dangerous, how attackers can weaponize it through spoolss, what defenders should hunt for, and how to mitigate exposure. We also built it into Abducted, a new Medium Linux CVE Machine on HTB Labs, so you can explore the vulnerability hands-on. Read the full analysis: okt.to/NDOzkx #HackTheBox #CVE #CVE20264480 #Samba #LinuxSecurity #RCE #CyberSecurity #ThreatHunting #VulnerabilityResearch

Your email gateway filters are great, right up until they fail. 📨 When a targeted phishing lure slips through, the clock starts ticking. Join us live on June 24 at 3PM UTC for Ep. 2 of our Blue Team series, where HTB engineers David F. and Marko Gordic will solve the "A Call from the Museum" challenge on screen. They will be breaking down the incident by walking through raw header triage and payload extraction step by step. Can't make it live? Register to get the recording sent to your inbox! Reserve your spot: okt.to/tzI8DW

🚨 Weekly Content Drop 🚨 This week’s drop brings fresh content across threat hunting, digital forensics, Linux, and hardware. 🔎 Kraken — New Sherlock Difficulty: Medium Creator: M4shl3 Tech: FTK Imager, Windows, CyberChef, MFTECmd.exe Knowledge domains: Threat Hunting, Digital Forensics Investigate AD1 triage output using FTK to uncover artifacts and persistence left by a threat actor using the machine to pivot to an internal workstation. Also dropping this week: 🔌 Connected — New Machine Linux | 20 points | Releases 6 Jun 2026 ☕ Espresso — New Challenge Very Easy | Hardware New week. New evidence. New paths to uncover. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #ThreatHunting #DigitalForensics #DFIR #WindowsForensics #Linux #Hardware #CyberSecurity

Security testing can’t stay periodic when enterprise environments are moving continuously. In a new InfoWorld opinion article, Dimitris Bougioukas, SVP, IT Security Training Services at Hack The Box, explores how modern security teams can operationalize continuous purple teaming to keep pace with automated deployment cycles, AI-driven threats, and fast-changing attack techniques. The article breaks down how organizations can bring red and blue team tactics directly into security operations workflows through: • Automated attack scenario simulation • Lab-based validation embedded into operational workflows • Detection telemetry aligned with resilience and readiness KPIs • Integration with SIEM, SOAR, infrastructure-as-code, and existing toolchains • Controlled environments for testing AI red teaming tactics and defensive AI tooling As release velocity increases, continuous purple teaming helps security teams collaborate in real time, validate controls continuously, and build a feedback-driven culture without slowing the business down. Read the full article: okt.to/73nL60 #HackTheBox #PurpleTeaming #CyberSecurity #ContinuousSecurity #DetectionEngineering #RedTeam #BlueTeam #AIinCyberSecurity #CyberResilience

🚨 ICYMI - Last week's Content Drop🚨 Last week’s drop brings fresh content across digital forensics, Linux, and crypto. 🔎 CAMouflage — New Sherlock Difficulty: Easy Creator: M4shl3 Tech: Windows, Wireshark Knowledge domain: Digital Forensics Investigate a cracked application infection chain by parsing MFT and USN Journal artifacts, reconstructing execution timelines through Prefetch analysis, deobfuscating a dropped batch script, and tracing an AutoIt-based StealC v2 loader’s C2 communication. Also dropped: 💻 DevHub — New Machine Linux | 30 points | Releases 30 May 2026 🔐 Surprise Factor — New Challenge Hard | Crypto New week. New evidence. New paths to uncover. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #DigitalForensics #Wireshark #WindowsForensics #Linux #Crypto #CyberSecurity

🏖️ Doing our part to keep our local communities clean. On May 14th, the HTB crew hit Floisvos Beach in Athens for a team cleanup. The final tally: ✨ 680 liters of waste cleared from the coast. ♻️ 100 liters of recyclables properly sorted. Swipe left to see our volunteers in action! 📸

It's official. 🏆 Global Cyber Skills Benchmark 2026 has officially wrapped up, and the definitive scores are locked. Massive praise to the #cybersecurity teams who performed flawlessly under pressure and dominated the leaderboard: 🥇 PrimeRanks 🥈 GMO Cybersecurity by IERAE 🥉 CTFAE #HackTheBox #HTB #GCSB2026 #ProjectNightfall #CTF #CyberSkills #Cybersecurity #CaptureTheFlag

The results are in! 💻 Big congratulations to the winners of our latest giveaway: 🏆 supermeisty 🏆 l33tb0ySlim 🏆 L1nuxKid (Check your inbox/DMs for details on how to claim your prize!) We are happy you've showcased your stories with us and look forward to seeing more XP journeys on the road ahead. Didn't win this time around? Keep your eyes peeled for more great opportunities with HTB coming very soon. 🟢👁️

Credential theft remains one of the most common ways attackers move deeper into an environment. The new Credential Access Tradecraft Analysis module is now available on HTB Academy and HTB Enterprise, helping learners understand how credential access techniques are executed, detected, and investigated in real-world scenarios. Tier: 4 Difficulty: Hard Category: Defensive Built for defenders looking to strengthen their ability to analyze attacker tradecraft, spot credential access activity, and improve detection and response skills. Start learning: okt.to/9p8khO #HackTheBox #HTBAcademy #HTBEnterprise #CyberSecurityTraining #BlueTeam #SOC #ThreatHunting #IncidentResponse #CredentialAccess

🚨 Weekly Content Drop🚨 This week’s drop brings a new Sherlock built around a full Windows domain compromise chain and the start of a new Season with Reactor. 🔎 New Sherlock: JobApplicant Difficulty: Hard Creator: chicken0248 Tech: Windows, Kerberos, IIS, NTFS Investigate a compromised web application portal where configuration abuse allows a PDF file to behave as a script and act as a webshell. From there, trace the attacker’s path through data exfiltration, domain controller access, Kerberoasting, AD CS certificate template abuse, DCSync, Golden Ticket persistence, and operational cleanup. Also dropping this week: ☢️ Reactor — First Machine of the Season Linux | 20 points | Releases 23 May 2026 #HackTheBox #HTB #WeeklyContentDrop #Sherlock #DigitalForensics #SOC #Kerberos #WindowsSecurity #IncidentResponse #CyberSecurity

“Almost no deployment time, but a secure environment where we do not have to worry about breaking stuff or client data.” That is how Thomas Hayen, Penetration Testing & Red Teaming Team Lead at Easi, describes the value of Hack The Box Professional Labs. From gaining experience with Sliver C2 and Mythic C2 to keeping red team operations separated, Professional Labs help teams train with real-world tools in safe, controlled environments. Hack the Box is built for teams that need practical experience without unnecessary setup or risk. #HackTheBox #ProfessionalLabs #RedTeam #PenTesting #CyberSecurityTraining #MythicC2 #SliverC2

AI is changing cybersecurity faster than traditional training models can keep up. At RSAC 2026, our Chief Product Officer, Gerasimos Marketos sat down to discuss how AI is reshaping cybersecurity skills, the evolving relationship between humans and machines, and why hands-on learning is becoming critical for defenders and ethical hackers. From AI-powered CTF competitions to real-world fraud detection, the conversation explores why AI should be seen as an accelerator, not a replacement, and how teams can prepare for agentic threats, AI governance challenges, and the future of cyber careers. Read the full blog for key takeaways from the interview: okt.to/5Xjgey #HackTheBox #RSAC2026 #CyberSecurity #AI #CyberSkills #CyberSecurityTraining #CTF #RedTeam #BlueTeam #PurpleTeam

The Kunoichi Cyber Game marked a major milestone for women in cybersecurity. Debuting at the Code Blue conference in Tokyo, it became the first international women’s CTF, bringing together under-30 female cyber professionals from the United States, United Kingdom, Japan, and Europe. Hack The Box supported the initiative by providing the platform, training access, and real-world CTF challenges designed to help participants benchmark their skills, strengthen weak areas, and compete at a higher level. With 30 challenges across web exploitation, forensics, binary exploitation, cryptography, and reverse engineering, the event showed what is possible when hands-on training, competition, and purpose come together. Read the full blog: okt.to/wlmIUn #HackTheBox #WomenInCyber #CyberSecurity #CTF #CyberSkills #CyberTraining #DiversityInCyber #InfoSec

It would be ironic to measure SOC response time… only to find it takes days or weeks to schedule their next simulation. Threat Range Event Management is now live on the HTB CTF platform, enabling managers to create, launch, and manage defensive cyber simulations on demand. Now teams can: -Run SOC and DFIR drills through the same streamlined workflow as your other benchmarking simulations - Eliminate operational bottlenecks tied to external setup support. - Validate detection and response readiness with a wide range of repeatable, hands-on simulations. Check it out here: okt.to/pJuf9e #HackTheBox #ThreatRange #CyberSecurity #BlueTeam #SOC #DFIR #IncidentResponse #CyberResilience #CyberDefense